Principal Network Security Engineer (NAC & Identity Services)
Location: Remote
Job Summary:
We are seeking a Principal Network Security Engineer to play a critical role in securing enterprise infrastructure by designing, deploying, and managing advanced network security solutions. This is a high-impact position within a newly formed team focused on mission-critical initiatives.
The ideal candidate is a strategic thinker, hands-on expert, and product owner with a strong security-first mindset who can lead the evolution of Network Access Control (NAC) and Identity platforms aligned with enterprise cybersecurity goals.
Key Responsibilities:
Architecture & Strategy
- Lead the design and architecture of secure, scalable NAC and identity-based security solutions
- Partner with cross-functional teams to align security initiatives with business objectives
Deployment & Engineering
- Lead global deployment and configuration of NAC platforms and Identity Services (e.g., Cisco ISE)
- Ensure high availability, scalability, and compliance across environments
NAC & Identity Management
- Own and manage NAC platforms (Forescout preferred)
- Implement device discovery, classification, and profiling strategies
- Define and enforce access control policies based on device posture
Security Operations
- Perform deep packet analysis using tools like Wireshark
- Leverage SIEM tools (Azure Sentinel, Log Analytics) for threat detection and analysis
- Develop playbooks, SOPs, and incident response procedures
Automation & Scripting
- Build automation using Python, Bash, PowerShell, or Perl
- Utilize IaC tools such as Ansible or Terraform for scalable deployments
Infrastructure & Integration
- Work with Active Directory, Entra ID, LDAP integrations
- Manage authentication protocols (802.1x, RADIUS, TACACS, OAuth)
- Integrate PKI solutions (Venafi) and firewall platforms (Palo Alto, Checkpoint, Illumio)
Required Skills & Experience:
- Expert-level experience with NAC platforms (Forescout preferred)
- Hands-on experience with Cisco ISE / Identity Services
- Strong knowledge of networking fundamentals (TCP/IP, VLANs, VRFs, VPNs, routing)
- Deep understanding of Layer 2–Layer 7 networking and security
- Experience with Linux, Windows, and macOS environments
- Strong troubleshooting and analytical skills with a security-first approach
- Experience with cloud platforms (Azure or AWS)
Preferred Qualifications:
- CISSP certification (nice to have)
- CCNP certification (preferred)
- Experience in financial services environments
Preferred Certifications:
- FSCA – Forescout Certified Administrator
- FSAA – Forescout Advanced Administrator
- FSCE – Forescout Certified Engineer
Soft Skills:
- Strong communication and stakeholder management skills
- Ability to lead initiatives and take full product ownership
- Excellent documentation and technical writing skills
You received this message because you are subscribed to the Google Groups "Daily C2C distribution list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to daily-c2c-distribution-list+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/daily-c2c-distribution-list/d9d8116b-bfb9-48c2-ad04-6ef5d5204303n%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
